IBM Support

IV72146: KFW_AUTHORIZATION_MAX_INVALID_LOGIN DOES NOT WORK

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • In ITM 6.3.0 and higher, KFW_AUTHORIZATION_MAX_INVALID_LOGIN
    does not work. Users who exceed the specified number of failed
    login attempts are not locked out, and are able to successfully
    log in to the client.
    
    RECREATE INSTRUCTIONS:
    1. Set KDS_VALIDATE_EXT=Y to enable authentication at the hub
    2. Set KFW_AUTHORIZATION_MAX_INVALID_LOGIN to some value. For
    testing purposes, 2 is a good number.
    3. Start the TEPS
    4. Start a client and attempt to log in with a valid user ID
    but incorrect password.
    5. Repeat step 4 until you exceed the value set for
    KFW_AUTHORIZATION_MAX_INVALID_LOGIN
    
    After the value for KFW_AUTHORIZATION_MAX_INVALID_LOGIN has
    been exceeded, login attempts still return a login error,
    instead of the message that the account has been locked out. If
    the correct password is then used, the user can successfully
    log in.
    
    Approver Initials:    RP
    

Local fix

Problem summary

  • Users are not locked out after exceeding the number of invalid
    login attempts defined in KFW_AUTHORIZATION_MAX_INVALID_LOGIN.
    

Problem conclusion

  • Modified code to properly increment invalid login attempts.
    
    The fix for this APAR is contained in the following maintenance
    packages:
    
      | fix pack | 6.3.0-TIV-ITM-FP0006
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV72146

  • Reported component name

    TEPS

  • Reported component ID

    5724C04PS

  • Reported release

    630

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2015-04-14

  • Closed date

    2015-10-02

  • Last modified date

    2015-12-10

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    TEPS

  • Fixed component ID

    5724C04PS

Applicable component levels

  • R630 PSY

       UP

[{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSCTLMQ","label":"ITM Tivoli Enterprise Portal Server V6"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"630","Edition":"","Line of Business":{"code":"","label":""}}]

Document Information

Modified date:
10 December 2015